5 matches found
EUVD-2014-7100
Malware in sbrugna...
CVE-2014-7228
Akeeba Restore restore.php, as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3.0 through 3.3.4; Akeeba Backup for Joomla! Professional 3.0.0 through 4.0.2; Backup Professional for WordPress 1.0.b1 through 1.1.3; Solo 1.0.b1 through 1.1.2; Admin Tools Core and Professional 2.0.0...
Code injection
Akeeba Restore restore.php, as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3.0 through 3.3.4; Akeeba Backup for Joomla! Professional 3.0.0 through 4.0.2; Backup Professional for WordPress 1.0.b1 through 1.1.3; Solo 1.0.b1 through 1.1.2; Admin Tools Core and Professional 2.0.0...
CVE-2014-7228
Akeeba Restore restore.php, as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3.0 through 3.3.4; Akeeba Backup for Joomla! Professional 3.0.0 through 4.0.2; Backup Professional for WordPress 1.0.b1 through 1.1.3; Solo 1.0.b1 through 1.1.2; Admin Tools Core and Professional 2.0.0...
CVE-2014-7228
CVE-2014-7228 affects multiple Joomla! related products (notably Akeeba Kickstart/Restore components and related tools) where, during backup or archive update cleansing, parameters are not removed from $_GET/$_POST and are later accessed via getQueryParam. This allows a remote attacker to bypass ...